Bounties
Community
Info
thorsten / phpmyfaq
Project repository
phpMyFAQ - Open Source FAQ web application for PHP 8.1+ and MySQL, PostgreSQL and other databases
Submit a report
FIRST INTERACTION
WITHIN
1 DAY
REVIEW
WITHIN
2 DAYS
FIX
WITHIN
32 DAYS
Reflected XSS in action
Oct 12th 2023
nyeooo
•
duplicate
Critical
Stored XSS in Attachment File Name
Oct 31st 2023
mattzajork
•
Medium
Medium
•
CVE-2023-5867
CVE-2023-5867
Reflected XSS in /admin/index.php
Oct 31st 2023
ngductung
•
High
High
•
CVE-2023-5863
CVE-2023-5863
Insufficient Session Expiration
Oct 31st 2023
nyeooo
•
High
High
•
CVE-2023-5865
CVE-2023-5865
CSRF LOGOUT
Sep 24th 2023
nyeooo
•
informative
Medium
Store DOM XSS in FAQ
Oct 31st 2023
hainguyen0207
•
High
High
•
CVE-2023-5864
CVE-2023-5864
stored XSS Bypass
Sep 11th 2023
ahmedvienna
•
informative
Medium
SQL Error leads to internal Path Disclosure and possible SQL Injection
Sep 11th 2023
ahmedvienna
•
not applicable
Cookie without Secure flag
Oct 31st 2023
nyeooo
•
Medium
Medium
•
CVE-2023-5866
CVE-2023-5866
New password can be set as same as the old password
Sep 4th 2023
nyeooo
•
informative
Medium
Store XSS in Mail Setup
Sep 30th 2023
hainguyen0207
•
Critical
Critical
•
CVE-2023-5316
CVE-2023-5316
Store XSS in Users
Sep 30th 2023
hainguyen0207
•
High
High
•
CVE-2023-5319
CVE-2023-5319
XSS at File Upload in FAQ Attachment
Sep 1st 2023
hainguyen0207
•
informative
Medium
Store DOM XSS in FAQ
Sep 1st 2023
hainguyen0207
•
informative
Critical
Store XSS in FAQ Multisites
Sep 30th 2023
hainguyen0207
•
Medium
Medium
•
CVE-2023-5317
CVE-2023-5317
File Upload Vulnerability in Categories
Sep 30th 2023
hainguyen0207
•
Medium
Medium
•
CVE-2023-5227
CVE-2023-5227
Store DOM XSS in Edit configuration
Sep 30th 2023
hainguyen0207
•
Critical
Critical
•
CVE-2023-5320
CVE-2023-5320
stored XSS Bypass leads to Privilege Escalation Account Takeover (ATO) of any Ac...
Aug 23rd 2023
ahmedvienna
•
spam
stored XSS Bypass in the TAGS Section and other places in the application
Aug 31st 2023
ahmedvienna
•
Medium
Medium
•
CVE-2023-6889
CVE-2023-6889
stored XSS Bypass in the FAQ Fields
Sep 30th 2023
ahmedvienna
•
Medium
Medium
•
CVE-2023-6890
CVE-2023-6890
unrestricted File Upload in the FAQ Metadata could lead to huge problems - for e...
Jul 12th 2023
ahmedvienna
•
informative
High
Bypassing the Username Field and letting it blank phpmyfaq
Jul 12th 2023
ahmedvienna
•
not applicable
Stored Xss in Question field due to lack of sanitization in Link.php
Jul 31st 2023
chonkysec
•
High
High
•
CVE-2023-4007
CVE-2023-4007
CSV Injection while export users
Jul 31st 2023
lujiefsi
•
High
High
•
CVE-2023-4006
CVE-2023-4006
Reflected Cross-Site Scripting when restoring a backup
Jun 30th 2023
nalysius
•
Medium
Medium
•
CVE-2023-3469
CVE-2023-3469
Stored xss in module FAQ News
May 31st 2023
chucsse
•
Medium
Medium
•
CVE-2023-2998
CVE-2023-2998
Stored XSS in the module named "Add new FAQ"
May 3rd 2023
chucsse
•
duplicate
Medium
Stored XSS bypass in "FAQ"
May 31st 2023
mohamedabdelhady933
•
Medium
Medium
•
CVE-2023-2999
CVE-2023-2999
User Registration Misconfiguration
Apr 14th 2023
ahmedvienna
•
not applicable
Insufficient Filtering Leads to Stored Cross Site Scripting at FAQ
May 17th 2023
choocs
•
High
High
•
CVE-2023-2753
CVE-2023-2753
XSS Stored in when Adding a Question
Apr 12th 2023
cupc4k3
•
duplicate
Medium
Email Address Manipulation Vulnerability
Apr 30th 2023
cupc4k3
•
Medium
Medium
•
CVE-2023-2429
CVE-2023-2429
Stored Cross Site Scripting at FAQ Answer
May 17th 2023
choocs
•
High
High
•
CVE-2023-2752
CVE-2023-2752
Cross site scripting vulnerability in throsten /phpmyfaq
Apr 30th 2023
asura-n
•
Medium
Medium
•
CVE-2023-2427
CVE-2023-2427
Stored cross site scripting vulnerability in thorsten/phpmyfaq
Apr 30th 2023
asura-n
•
Medium
Medium
•
CVE-2023-2428
CVE-2023-2428
Stored xss in Comments -
Apr 3rd 2023
panveanyy
•
informative
High
Multiple Stored XSS via mail parameter
Apr 30th 2023
eternyle
•
High
High
•
CVE-2023-2550
CVE-2023-2550
Business Logic Error username empty bypass
Mar 17th 2023
ahmedvienna
•
not applicable
XSS @ records
Mar 31st 2023
hatlesswizard
•
Medium
Medium
•
CVE-2023-1759
CVE-2023-1759
stored XSS Protection bypass by changing the User Profile Name
Mar 31st 2023
ahmedvienna
•
Medium
Medium
•
CVE-2023-1875
CVE-2023-1875
weak Password Policy while creating a new User with the Admin Account
Mar 31st 2023
ahmedvienna
•
Medium
Medium
•
CVE-2023-1753
CVE-2023-1753
XSS @ group
Mar 31st 2023
hatlesswizard
•
Medium
Medium
•
CVE-2023-1754
CVE-2023-1754
XSS @ Stop Words
Mar 31st 2023
hatlesswizard
•
Medium
Medium
•
CVE-2023-1884
CVE-2023-1884
Stored XSS @ updatecategory
Mar 31st 2023
hatlesswizard
•
Medium
Medium
•
CVE-2023-1879
CVE-2023-1879
The faqusername parameter in admin/index.php has stored xss
Feb 26th 2023
wanan0red
•
duplicate
High
Unrestricted User Registration via Captcha Bypass
Feb 22nd 2023
7h3h4ckv157
•
duplicate
High
Reflected XSS in send2friend.php
Mar 31st 2023
tsarsecurity
•
High
High
•
CVE-2023-1880
CVE-2023-1880
Stored XSS in the adminlog functionality.
Mar 31st 2023
tsarsecurity
•
High
High
•
CVE-2023-1878
CVE-2023-1878
The improper restriction allows any account to add new FAQ.
Feb 15th 2023
isdkrisna
•
informative
High
User with only "edit" can delete post and somethimes can add post
Mar 31st 2023
isdkrisna
•
High
High
•
CVE-2023-1887
CVE-2023-1887
Captcha Bypass allows sending unlimited Comments
Mar 31st 2023
ahmedvienna
•
High
High
•
CVE-2023-1886
CVE-2023-1886
stored XSS in the Comments Field
Feb 15th 2023
ahmedvienna
•
duplicate
High
stored HTML-Injection in the Comments Part
Mar 31st 2023
ahmedvienna
•
Medium
Medium
•
CVE-2023-1761
CVE-2023-1761
Privilege escalation from user with "add user" to super admin
Mar 31st 2023
isdkrisna
•
High
High
•
CVE-2023-1762
CVE-2023-1762
stored XSS in the Category Field Name
Mar 31st 2023
josefjku
•
Medium
Medium
•
CVE-2023-1885
CVE-2023-1885
stored XSS after XSS Filter Bypass through exporting an HTML-Document
Mar 31st 2023
ahmedvienna
•
Medium
Medium
•
CVE-2023-1756
CVE-2023-1756
stored HTML Injection in PDF Export
Feb 14th 2023
ahmedvienna
•
not applicable
Remote code execution in langEditor.php
Feb 13th 2023
mariovata
•
self closed
Stored XSS on Real name
Feb 13th 2023
kevinkien
•
informative
High
Broken access control - Someone still can comment in unactive FAQ NEWS
Mar 31st 2023
isdkrisna
•
Medium
Medium
•
CVE-2023-1883
CVE-2023-1883
XSS in hyperlink when create FAQ News
Mar 31st 2023
isdkrisna
•
High
High
•
CVE-2023-1757
CVE-2023-1757
XSS in Comment Faq news username parameter
Mar 31st 2023
isdkrisna
•
High
High
•
CVE-2023-1758
CVE-2023-1758
Stored XSS on Configuration Version
Mar 31st 2023
isdkrisna
•
High
High
•
CVE-2023-1755
CVE-2023-1755
Stored XSS edit Config Link
Mar 31st 2023
isdkrisna
•
High
High
•
CVE-2023-1882
CVE-2023-1882
Stored xss real name
Mar 31st 2023
isdkrisna
•
High
High
•
CVE-2023-1760
CVE-2023-1760
No Sesssion Termination after Password Change
Feb 7th 2023
ahmedvienna
•
not applicable
stored Blind XSS in Admin Panel through FAQ-Proposal leads to Admin Full Account...
Feb 12th 2023
ahmedvienna
•
High
High
•
CVE-2023-0786
CVE-2023-0786
Stored XSS in the FAQ Change Name Parameter
Jan 27th 2023
ahmedvienna
•
informative
High
Name Field and all other required Fields Bypass while doing FAQ Proposals
Feb 12th 2023
ahmedvienna
•
High
High
•
CVE-2023-0880
CVE-2023-0880
FAQ Proposal E-Mail Field Bypass - no Email needed
Jan 28th 2023
ahmedvienna
•
duplicate
High
IDOR allows to archive any Account including the ADMIN Account and lockout the A...
Jan 25th 2023
ahmedvienna
•
spam
important E-Mail Input Field bypassed allowing Account Lockout and Takeover
Feb 12th 2023
ahmedvienna
•
High
High
•
CVE-2023-0790
CVE-2023-0790
stored HTML-Injection in the FAQ-Proposal
Feb 12th 2023
ahmedvienna
•
High
High
•
CVE-2023-0789
CVE-2023-0789
stored HTML-Injection throuth the Question Form
Feb 12th 2023
ahmedvienna
•
High
High
•
CVE-2023-0788
CVE-2023-0788
stored XSS through Question sending
Feb 12th 2023
josefjku
•
High
High
•
CVE-2023-0787
CVE-2023-0787
stored XSS in the Question Part
Jan 23rd 2023
josefjku
•
self closed
stored HTML Injection
Jan 25th 2023
josefjku
•
duplicate
High
Stored XSS - allows stealing Admin and Users Cookies
Feb 12th 2023
josefjku
•
High
High
•
CVE-2023-0791
CVE-2023-0791
stored HTML-Injection
Jan 23rd 2023
ahmedvienna
•
informative
Medium
Stored HTML Injection
Feb 12th 2023
ahmedvienna
•
High
High
•
CVE-2023-0794
CVE-2023-0794
No Password Policy at all during Registration and and Password Change allows Acc...
Feb 12th 2023
ahmedvienna
•
High
High
•
CVE-2023-0793
CVE-2023-0793
HTML-Injection
Feb 12th 2023
ahmedvienna
•
Medium
Medium
•
CVE-2023-0792
CVE-2023-0792
Code Injection to all user's browser - Via Super User
Jan 16th 2023
7h3h4ckv157
•
informative
High
Stored XSS in Add question can load admin account takeover
Jan 9th 2023
leminv
•
duplicate
Critical
Stored XSS in Add new question
Jan 15th 2023
leminv
•
Critical
Critical
•
CVE-2023-0306
CVE-2023-0306
Stored XSS in Add new category
Jan 6th 2023
leminv
•
duplicate
Critical
Weak password at demo website version 3.1.9
Jan 15th 2023
uonghoangminhchau
•
Medium
Medium
•
CVE-2023-0307
CVE-2023-0307
Stored XSS via username
Dec 22nd 2022
christynorl
•
duplicate
Critical
Stored XSS in admin panel (users page)
Jan 15th 2023
mohamedabdelhady933
•
High
High
•
CVE-2023-0308
CVE-2023-0308
Stored XSS in FAQ comments
Jan 15th 2023
mohamedabdelhady933
•
Critical
Critical
•
CVE-2023-0310
CVE-2023-0310
Blind Stored XSS in admin panel (open question page)
Jan 15th 2023
mohamedabdelhady933
•
High
High
•
CVE-2023-0309
CVE-2023-0309
Blind Stored XSS in administration panel
Jan 15th 2023
mohamedabdelhady933
•
High
High
•
CVE-2023-0312
CVE-2023-0312
Bypass All Captchas in the application
Jan 15th 2023
mohamedabdelhady933
•
Medium
Medium
•
CVE-2023-0311
CVE-2023-0311
Reflect XSS Which can help in any CSRF Vulnerability
Jan 15th 2023
aggressiveuser
•
Medium
Medium
•
CVE-2023-0314
CVE-2023-0314
Stored XSS on User Management, Category, Add New FAQ, Add News and Configuration
Jan 15th 2023
baharuddinzulkifli
•
Medium
Medium
•
CVE-2023-0313
CVE-2023-0313
Reflect Cross Site Scripting
Dec 11th 2022
aggressiveuser
•
Critical
Critical
•
CVE-2022-4407
CVE-2022-4407
Missing CSRF protection
Dec 11th 2022
7h3h4ckv157
•
Medium
Medium
•
CVE-2022-4408
CVE-2022-4408
TLS Cookie without `secure` flag at https://roy.demo.phpmyfaq.de
Dec 11th 2022
sl4x0
•
Medium
Medium
•
CVE-2022-4409
CVE-2022-4409
Remote Code Execution via add_instance action
Nov 4th 2022
ugniusv
•
informative
Critical
Authenticated SQL injection via filename & update-instance parameters
Dec 11th 2022
ugniusv
•
High
High
Unauthenticated stored XSS via username & name parameters
Dec 11th 2022
ugniusv
•
High
High
SQL Injection inside instance name leads to Remote Code Execution
Dec 11th 2022
xanhacks
•
Critical
Critical
SQL Injection via lang parameter/RCE when PostgreSQL is used
Dec 11th 2022
ugniusv
•
Critical
Critical
XSS Stored inside website title
Dec 11th 2022
xanhacks
•
Low
Low
XSS Stored inside Admin logs
Dec 11th 2022
xanhacks
•
High
High
XSS stored in Category name
Dec 11th 2022
xanhacks
•
Medium
Medium
SQL Injection inside category creation (checkIfCategoryExists)
Dec 11th 2022
xanhacks
•
High
High
Account privilege escalation from "restore backup" permission to admin account
Nov 1st 2022
xanhacks
•
duplicate
Medium
RCE - Execution of PHP code from user input (Code Injection)
Nov 1st 2022
xanhacks
•
not applicable
Stored Cross-site scripting
Oct 29th 2022
sk4rl1ght
•
High
High
•
CVE-2022-3765
CVE-2022-3765
Weak Password Requirement
Oct 29th 2022
sk4rl1ght
•
High
High
•
CVE-2022-3754
CVE-2022-3754
Reflect Cross Site Scripting when search
Oct 29th 2022
sk4rl1ght
•
High
High
•
CVE-2022-3766
CVE-2022-3766
Stored XSS and possible RCE/LFI in case of misconfiguration
Oct 9th 2022
mike993
•
High
High
•
CVE-2022-3608
CVE-2022-3608
Cross-Site Request Forgery (CSRF)
Oct 2nd 2022
khanhchauminh
•
Low
Low
Account Takeover
Oct 2nd 2022
akshayravic09yc47
•
informative
Critical
Stored XSS via Editing config
Jul 23rd 2022
jhond0e
•
High
•
$5
High
•
$5
Cross-Site Request Forgery (CSRF)
Jan 17th 2022
ktg9
•
Medium
•
$7.5
Medium
•
$7.5
Cross-Site Request Forgery (CSRF)
Jan 17th 2022
justinp09010
•
Low
•
$7.5
Low
•
$7.5
Cross-Site Request Forgery (CSRF)
Jan 17th 2022
ktg9
•
Medium
•
$7.5
Medium
•
$7.5
Cross-site Scripting (XSS) - Stored
Jan 17th 2022
0x7zed
•
High
•
$35
High
•
$35
Sensitive Cookie in HTTPS Session Without 'Secure' Attribute
Oct 26th 2021
0x7zed
•
Medium
•
$25
Medium
•
$25
CRITICAL
$0
HIGH
$0
MEDIUM
$0
LOW
$0
